Suse: >> Suse Linux >> 8.2 Security Vulnerabilities
The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf function, uses C include files that define vsnprintf to use the less safe vsprintf function, which can lead to buffer overflow vulnerabilities that enable a denial of service (server crash) and possibly execute arbitrary code.
CVSS Score
10.0
EPSS Score
0.097
Published
2004-08-06
Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.
CVSS Score
7.2
EPSS Score
0.001
Published
2004-08-06
The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources.
CVSS Score
2.1
EPSS Score
0.001
Published
2004-08-06
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.
CVSS Score
2.1
EPSS Score
0.007
Published
2004-08-06
SuSEconfig.susewm in the susewm package on SuSE Linux 8.2Pro allows local users to overwrite arbitrary files via a symlink attack on the susewm.$$ temporary file.
CVSS Score
4.6
EPSS Score
0.002
Published
2003-11-17
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
CVSS Score
7.2
EPSS Score
0.002
Published
2000-02-03
The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.
CVSS Score
2.1
EPSS Score
0.001
Published
1999-12-14
Page 9